Leaked and Loaded: DOGE’s API Key Crisis
Cyberside Chats: Cybersecurity Insights from the Experts

Leaked and Loaded: DOGE’s API Key Crisis

2025-07-22
On July 13, 2025, a developer at the Department of Government Efficiency—DOGE—accidentally pushed a private xAI API key to GitHub. That key unlocked access to 52 unreleased LLMs, including Grok‑4‑0709, and remained active long after discovery.  In this episode of Cyberside Chats, we examine how a single leaked credential became a national-level risk—and how it mirrors broader API key exposures at BeyondTrust and across GitHub. LMG Security’s Director of Penetration Testing, Tom Pohl, shares red team insights on how embedded secrets give attackers a foothold—and...
View more
Comments (3)

More Episodes

All Episodes>>

Get this podcast on your phone, Free